Loading…
Cybersecurity course
cybersecuritynetworksecurityblue teamSOCsecurity engineering
About the Course
If you want to take a serious step into the world of cybersecurity, this course is made exactly for you. Here you don't just learn theory — you simulate attacks in real labs, defend systems, respond to incidents, and build a complete SOC infrastructure. From network protocols to cloud security, from Linux administration to the depths of Active Directory, from packet analysis with Wireshark to threat hunting with SIEM and EDR — everything is covered in this course. Through Red Team modules, you learn to think from both the attacker's and the defender's perspective. By the end of the course, you will have hands-on experience with industry tools such as BloodHound, Wazuh, Splunk, Velociraptor, and Metasploit, apply the MITRE ATT&CK framework, and be fully ready to enter the workforce.
The following topics are covered:
- DNS, DHCP, HTTP/S, SSH protocols
- Encryption, TLS, and PKI fundamentals
- VPN and network segmentation
- Linux system administration
- Windows and Active Directory management
- Group Policy (GPO) and LAPS
- Compliance frameworks (ISO 27001, NIST CSF, GDPR)
- EDR/XDR telemetry and threat detection
- Phishing analysis and email security
- Cloud security (AWS and Azure)
- Incident Response (NIST/SANS methodology)
- SOC processes, playbooks, and SOAR fundamentals
- OSINT and reconnaissance methods
- Network attacks (ARP Spoofing, DHCP Starvation, VLAN Hopping)
- Web application attacks (SQLi, XSS, LFI)
- Password attacks and hash cracking
- Privilege escalation (Linux and Windows)
By the end of the course, participants will be able to:
- Analyze network traffic and detect anomalies
- Configure Linux and Windows systems in accordance with security standards
- Manage Active Directory environments and identify attack paths
- Write correlation rules in SIEM systems and perform alert analysis
- Monitor threats and conduct incident triage using EDR/XDR tools
- Perform disk and network forensics and reconstruct attack chains
- Analyze phishing campaigns and extract IOCs
- Apply the MITRE ATT&CK framework to real-world incidents
- Develop Incident Response plans and manage the full process from containment to recovery
- Use tools such as Wazuh, Splunk, BloodHound, Velociraptor, Metasploit, and Burp Suite at a practical level
- Identify and remediate common misconfigurations in AWS and Azure environments
- Independently respond to incidents following SOC playbooks
- Network concepts, topologies (Bus, Star, Ring, Mesh) and network types (PAN, LAN, WAN, Internet)
- Communication models, protocols, PDUs; CIA principles (Confidentiality, Integrity, Availability), vulnerabilities and threats
- Physical & Data Link Layer — duplex, wireless standards, MAC addresses, switching, VLAN types and attacks
- Application Layer — HTTP methods, DNS record types, FTP, SSH, Telnet
- Red Team & Blue Team, Common Terms in Cybersecurity, Cyber Attacks & Common Cyber AttacksNetwork attacks — MAC Flooding, ARP Spoofing, DHCP Starvation, VLAN Hopping: how they work and how to detect them
- Users and groups, sudo configuration, password policy (PAM, chage)
- File permissions (chmod, chown, chgrp), SUID/SGID/Sticky Bit, dangerous permission auditing
- Package management (apt/yum), system updates and security auto-updates
- Services (systemctl), process monitoring (ps, top, htop), cron jobs and systemd timers
- System log analysis — /var/log/syslog, auth.log, journalctl, rsyslog and logrotate
- Event Viewer and Sysmon — login event analysis (EventID 4624/4625/4648), Windows Event Forwarding
- Task Scheduler — event-triggered tasks via GUI and PowerShell, auditing SYSTEM tasks
- Active Directory — deploying AD DS, Domain Controller setup, OU structure, bulk user creation via PowerShell
- Group Policy (GPO) — password policies, software deployment, network drive mapping, GPO diagnostics
- Hands-on lab: build a domain from scratch, apply GPOs, find and fix a vulnerable attack path
- Firewall— network segmentation (LAN/WAN/DMZ), firewall rules, NAT, log analysis
- SIEM (Wazuh/Splunk/Elastic) — log source integration, correlation rules, dashboards and alerts
- Centralized log collection — Logstash/Fluentd, log parsing, normalization, retention policies
- Incident Response (NIST/SANS) — IR planning, evidence collection, containment → eradication → recovery
- Full hands-on lab: simulated attack → SIEM + EDR detection → ticket → response → report
- Ticketing systems (TheHive/Jira) — ticket workflow, triage → escalation → closure, MTTD/MTTR metrics
- Email security — SPF, DKIM, DMARC, phishing simulation with GoPhish, IOC extraction from headers
- Threat Intelligence — MISP and OpenCTI, IOC feed integration, SIEM alert enrichment
- Network Forensics — PCAP analysis with Wireshark/tcpdump, HTTP sessions, DNS queries, C2 traffic detection
- Capstone lab: PCAP + memory dump + SIEM logs → full attack chain reconstruction → incident report
- Cloud security on AWS and Azure — Shared Responsibility Model, IAM, common misconfigurations, CloudTrail
- Compliance frameworks — ISO 27001, NIST CSF, PCI DSS, GDPR: requirements, technical implementation, gap analysis
- Vulnerability Management — discovery → prioritization → remediation → reporting, integration with SIEM and ticketing
- Security hardening with CIS Benchmarks for Linux and Windows — automated checks with Ansible/OpenSCAP
- Final Project Presentation: architecture, detected threats, MTTD/MTTR metrics and conclusions
- Red Team fundamentals — lab setup, ethics, penetration testing methodologies (Black/White/Grey box)
- Network attacks — ARP Spoofing, DHCP Starvation, Rogue DHCP, traffic interception with Wireshark
- Password attacks — Brute Force with Hydra, hash cracking with Hashcat and John the Ripper
- Web attacks — SQL Injection, XSS, LFI/Directory Traversal, Burp Suite usage
- Malware analysis — Any.run/VirusTotal, IOC extraction, malware types (RAT, ransomware, rootkit, keylogger)
Enroll Now
Who Can Enroll?
16 above
Suitable for young people over 16 years old
Computer usage
Those who can use a computer comfortably
English knowledge level
Those with basic reading and writing skills in English
Logical thinking
Those who are able to analyze problems and find the right solutions
Course Instructors
All instructors at JET Academy are highly experienced professionals in their field, distinguished by their pedagogical skills
Gunduz Haydarov
Python Back-End Development instructor
Mammadali Mammadaliyev
Python Back-End Development instructor
Murad Orujov
Full Stack Development instructor
%20(1)-1761313230587.webp&w=1920&q=68)
Shamil Vasiyev
Full Stack Development instructor
Ramin Mammadazada
Full Stack Development instructor
Gulnara Dashdamirova
Microsoft Office Programs instructor
Vahid Teymurlu
Data Analytics instructor
Mushvig Manafli
Java Back-End Development instructor
Huseynaga Gurbanov
Practical Computer Knowledge instructor
Jeyhun Sharafkhanov
IT Help Desk and Network Administration Trainer
Arif Mukhtarov
IT Help Desk instructor
Tural Karimov
IT Help Desk instructor
-1761719440403.webp&w=1920&q=68)
Nazli Ibrahimli
English instructor
Nijat Babayev
Cybersecurity instructor
-1761912146662.webp&w=1920&q=68)
Huseyn Rustamli
Java Back-End Programming mentor
-1763979824141.webp&w=1920&q=68)
Yusif Teymurlu
Python Back-End Development mentor
-1773752258431.webp&w=1920&q=68)
Nijat Suleymanov
Cybersecurity Mentor
Yusıf Yaqublu
AI Engineering Development instructor
Frequently Asked Questions
Below you can find answers to the questions we are most frequently asked.